Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/94CAFF28751111F0A3D535E4DAE4EC9C.roa
File: 94CAFF28751111F0A3D535E4DAE4EC9C.roa (raw, json)
Hash identifier: teDLYzkdf9OlINJiEcyAZ0U8P0Hp9Azz1d06KD6bRHY=
Subject key identifier: 21:38:17:FA:89:44:DC:34:CE:9C:BA:7A:54:C4:25:36:F9:B8:4F:AD
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 091F
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/94CAFF28751111F0A3D535E4DAE4EC9C.roa
Signing time: Sat 09 Aug 2025 11:11:22 +0000
ROA not before: Sat 09 Aug 2025 11:11:14 +0000
ROA not after: Mon 31 Dec 2035 11:11:14 +0000
asID: 209181
IP address blocks: 165.49.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Aug 2025 00:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2335 (0x91f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Aug 9 11:11:14 2025 GMT
Not After : Dec 31 11:11:14 2035 GMT
Subject: CN=68972cda-36d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:45:5b:3b:29:4f:79:b5:03:93:b0:40:ad:76:
1b:26:55:0c:24:51:8a:de:0e:b3:37:d6:6a:8b:ee:
77:27:1c:f4:63:09:5e:e9:3b:a8:7b:f1:c4:45:85:
e0:64:ed:96:2e:68:9a:e7:5d:c7:ac:94:ac:2a:ae:
43:fe:a8:ca:59:f3:cc:0b:77:34:bb:6b:74:30:86:
49:10:27:b1:3d:a2:eb:de:bf:1d:bf:80:f7:f7:7c:
b5:d1:1e:d4:f5:71:ec:b2:b8:af:2f:89:27:99:62:
cf:08:c0:fd:6c:e1:aa:5e:dd:c8:b4:8b:c3:6c:4c:
8b:e4:d7:94:2f:1e:e2:b5:5e:dc:6c:da:e3:cc:3a:
84:bd:5f:3b:d8:44:fc:bd:d6:38:5c:59:b6:89:6d:
da:2b:b3:25:95:fe:ff:5a:6d:69:58:86:df:75:a8:
13:ea:7b:db:8d:d6:51:c8:3d:53:61:b3:ba:41:ac:
97:80:6c:f8:0e:0c:0c:b6:62:00:dc:2a:68:51:02:
75:fe:6b:dc:fc:21:36:42:aa:fa:ea:27:63:a5:fc:
f9:8b:b7:5e:89:8f:cb:12:1e:e2:54:2f:db:ef:f9:
5b:04:50:a1:42:95:44:51:e7:fa:a2:3b:17:b8:6c:
11:50:ca:4f:97:a7:58:4b:2a:ec:ab:89:bf:64:e2:
5b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:38:17:FA:89:44:DC:34:CE:9C:BA:7A:54:C4:25:36:F9:B8:4F:AD
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/94CAFF28751111F0A3D535E4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.116.0/24
Signature Algorithm: sha256WithRSAEncryption
85:70:e7:e2:b2:fb:3b:cd:63:37:6c:f6:d0:81:7a:9b:5a:c0:
c5:0b:14:48:9c:f3:a2:50:7a:3f:78:42:44:e9:66:a3:85:59:
47:c9:1d:e2:ff:be:1f:0d:3c:45:f5:88:b0:71:01:5b:20:cb:
03:ae:0e:97:44:9c:64:d0:07:26:69:1c:54:ea:b4:a5:23:ae:
b0:e6:60:45:ec:63:70:0f:bc:5c:4c:d3:55:9c:aa:f7:eb:61:
6c:30:fa:86:0f:b3:c3:c0:a6:52:65:00:ab:10:f7:f3:5a:98:
36:12:14:6a:5a:0d:1d:29:9a:61:76:f0:fc:f8:ed:f3:b8:e6:
ff:74:76:e0:f5:c6:99:7e:45:55:c3:0e:b8:72:5c:5b:f4:49:
fe:0e:a3:d6:fb:fa:85:76:42:fb:48:41:a0:80:58:34:54:a3:
50:1e:40:5b:18:3a:b8:63:c3:3f:ed:e0:15:5f:30:38:a5:0a:
b8:06:d2:2b:d8:6a:ef:6f:7a:e2:9c:dc:04:02:44:a8:af:23:
33:25:61:f7:90:5c:b5:84:06:a9:f9:e6:68:6a:fb:0d:7e:ec:
c6:63:42:98:57:f2:fc:ae:cc:a8:67:d1:1c:2f:aa:1b:91:e1:
e5:d1:34:e3:2d:b2:cd:36:aa:ba:88:c5:ab:8d:c4:27:37:57:
44:4a:ec:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 04:12:02 2025 by rpki-client